基于状态的工控协议Fuzzing测试技术
发布时间:2018-06-19 04:30
本文选题:工控协议 + 模糊测试 ; 参考:《计算机科学》2017年05期
【摘要】:针对传统Fuzzing测试应用于工控系统存在测试覆盖率和有效性低、异常监测手段受限等不足,提出了一种基于状态的工控协议Fuzzing测试方法。该方法采用XML脚本对协议状态机进行描述,设计了基于协议状态机的测试序列生成算法PSTSGM,对被测对象进行状态引导以求达到更高的命中率和覆盖率。提出了基于心跳的异常监测与定位方法 HFDLM,采用心跳探测和循环定位的方式,对被测嵌入式设备进行异常行为监测和异常用例定位。设计并实现了基于中间人代理的模糊测试原型系统SCADA-Fuzz,对电力SCADA系统进行了测试。实验结果表明,利用状态引导的测试能够有效发现安全漏洞。
[Abstract]:Aiming at the shortcomings of traditional fuzzing test application in industrial control system, such as low test coverage, low effectiveness and limited abnormal monitoring means, a state-based industrial control protocol fuzzing testing method is proposed. In this method, XML script is used to describe the protocol state machine, and a test sequence generation algorithm based on protocol state machine (PSTSGM) is designed to guide the object under test to achieve higher hit rate and coverage. A method of abnormal monitoring and localization based on heartbeat is presented in this paper. The method of heartbeat detection and cyclic localization is used to detect abnormal behavior and locate abnormal use cases of embedded devices. A fuzzy test prototype system SCADA-Fuzzbased on middleman agent is designed and implemented, and the SCADA system of electric power is tested. Experimental results show that the state-guided test can effectively detect security vulnerabilities.
【作者单位】: 解放军理工大学指挥信息系统学院;
【基金】:国家自然科学基金资助项目(611032253) 江苏省自然科学基金资助项目(BK2011115)资助
【分类号】:TP273;TP309
,
本文编号:2038448
本文链接:https://www.wllwen.com/kejilunwen/ruanjiangongchenglunwen/2038448.html